CVE-2016-8971

MEDIUM

IBM WebSphere MQ 8.0 - Memory Corruption

Title source: llm

Description

IBM WebSphere MQ 8.0 could allow an authenticated user with queue manager permissions to cause a segmentation fault which would result in the box having to be rebooted to resume normal operations. IBM Reference #: 1998663.

References (1)

[Patch, Vendor Advisory] https://www.ibm.com/support/docview.wss?uid=swg21998663

Scores

CVSS v3 6.5

EPSS 0.0040

EPSS Percentile 60.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-119

Status published

Affected Products (50)

ibm/websphere_mq

IBM Corporation/WebSphere MQ < 5.1

IBM Corporation/WebSphere MQ < 5.3

IBM Corporation/WebSphere MQ < 6.0

IBM Corporation/WebSphere MQ < 7.0

IBM Corporation/WebSphere MQ < 5.30.0

IBM Corporation/WebSphere MQ < 6.0.1.0

IBM Corporation/WebSphere MQ < 6.0.1.1

IBM Corporation/WebSphere MQ < 6.0.2.0

IBM Corporation/WebSphere MQ < 6.0.2.1

... and 35 more

Timeline

Published Mar 07, 2017

Tracked Since Feb 18, 2026